CVE-2023-6603

Опубликовано: 31 дек. 2024

Источник: ubuntu

Приоритет: medium

CVSS3: 7.5

Описание

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization.

Релиз	Статус	Примечание
devel	needed
esm-apps/bionic	released	7:3.4.11-0ubuntu0.1+esm11
esm-apps/focal	released	7:4.2.7-0ubuntu0.1+esm11
esm-apps/jammy	released	7:4.4.2-0ubuntu0.22.04.1+esm10
esm-apps/noble	not-affected	7:6.1.1-3ubuntu5+esm6
esm-apps/xenial	released	7:2.8.17-0ubuntu0.1+esm13
focal	ignored	end of standard support, was deferred [2025-06-02]
jammy	needed
noble	needed
oracular	ignored	end of life, was deferred [2025-06-02]

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	needs-triage
esm-infra/focal	DNE
focal	DNE
jammy	DNE
noble	DNE
oracular	DNE
plucky	DNE
questing	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

7.5 High

CVSS3

Связанные уязвимости

CVE-2023-6603

CVSS3: 7.5

nvd

11 месяцев назад

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization.

CVE-2023-6603

CVSS3: 7.5

debian

11 месяцев назад

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability ...

GHSA-gxvx-w63c-jprw

CVSS3: 7.5

github

11 месяцев назад

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization.

BDU:2025-14437

CVSS3: 7.5

fstec

11 месяцев назад

Уязвимость мультимедийной библиотеки FFmpeg, связанная с разыменованием указателя NULL, позволяющая нарушителю вызвать отказ в обслуживании

ROS-20251110-01

CVSS3: 7.5

redos

21 день назад

Множественные уязвимости ffmpeg

7.5 High

CVSS3

CVE-2023-6603

Описание

Пакет ffmpeg

Пакет libav

Ссылки на источники

Связанные уязвимости